Compliance & Privacy Analyst / Engineer

Internet BrandsNewark, NJ
174d
Match Resume

About The Position

WebMD is looking for a Compliance & Privacy Analyst/Engineer to support our security program compliance, privacy, and risk management needs. This role involves managing data privacy and compliance assessments, conducting data inventory and mapping exercises, and responding to data subject rights requests. The Analyst/Engineer will review compliance with our NIST 800-53 security program and address compliance gaps. The position requires collaboration with compliance leadership and business stakeholders to manage data privacy and compliance operations across Internet Brands and WebMD businesses.

Requirements

  • A degree in computer science, information security or a technology-related field required
  • A minimum of 3 or more years of data privacy management experience is required
  • A strong background and understanding of data privacy regulations, including GDPR, CCPA and state privacy regulations and prior program management is desired
  • A minimum of 3 or more years of security compliance and risk management experience is required
  • Strong analytical skills and the ability to understand and solve complex problems
  • Experience working on global projects on cross-functional, multi-location teams
  • Experienced in documenting and implementing procedures and guidelines
  • High degree of accuracy and attention to details
  • Proficient in using Google and Microsoft productivity tools

Nice To Haves

  • A professional data privacy (e.g. CIPP, CDPSE, etc.) or security certification (e.g. CISSP, CISM, etc.) is desirable but not required
  • Experience using OneTrust is preferred but not required

Responsibilities

  • Conduct data mapping & inventory requirements
  • Perform Data Protection Impact Assessments (DPIA) on our products, processes and external/internal services
  • Understand data types and flows across the businesses (systems, processes and vendors), and how these relate to policy and regulatory requirements
  • Support data privacy and compliance projects and proposed technology changes
  • Recommend process changes and internal projects needed to address new and changing data protection laws, standards and regulations
  • Support handling for data subject right requests & privacy inquiries
  • Perform compliance assessments and report findings and recommended actions to leadership
  • Administer our annual compliance training program
  • Perform third-party risk assessments
  • Support preparations for SOC2, ISO 27001 and HiTrust certification audits
  • Communicate privacy and compliance risks and concerns to leadership
  • Participate in team problem solving efforts and offer ideas to solve risk related issues
  • Identify opportunities for efficiencies in program processes and policy improvements
  • Assess and review business continuity, contingency planning and incident response plans and participate in exercises as needed
  • Partner with business units and functional areas to facilitate risk assessment and risk management processes

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Industry

Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

Education Level

Bachelor's degree

Number of Employees

1,001-5,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service